08/06, 8:50pm

Chrome OS exploits uncovered at Black Hat

Chrome OS is vulnerable both to extensions and, to some extent, to Google's own approach to security, WhiteHat Security experts led by Matt Johansen revealed in a presentation at the Black Hat conference this week. Because extensions have to reach outside sites and the OS depends on this code for extra features, it's possible to compromise the OS itself by installing a malicious extension. While not an issue by itself, CNET noted that extensions have shown up in Google's own Chrome Web Store explicitly meant to steal information, and others get deep access that could be misappropriated.